HIPAA HITECH Compliance News

Fifty Ways to Lose Your Lover or PHI

Getting chosen for a HIPAA audit by HHS is a longer shot than winning the lottery, but there are other ways; lose a laptop, click on the wrong email link, sign a business associate agreement, expose PHI on the internet, toss paper records in the dumpster, etc., etc.

Continue reading…

HIPAA Certification: Quarterly Risk Assessment

A quarterly risk assessment showing progress on compliance is your best HIPAA certification.  Progress not perfection is what HHS and OCR seek and a quarterly risk assessment is the best certfication of progress.

Continue reading…

OCR Steps Up Investigation of Smaller HIPAA Breaches

Beginning this month, OCR, through the continuing hard work of its Regional Offices, (my emphasis) has begun an initiative to more widely investigate the root causes of
breaches affecting fewer than 500 individuals.  OCR-Announcement-8-18-16.pdf

Continue reading…

Business Associate Exposes 650,000 Patient Records

In a breach reminiscent of the Anthem HIPAA breach, a business associate left 650,000 patient records exposed on the Internet.  R-C Healthcare Management a business associate of Bon Secour was adjusting their network settings and left the patient records exposed from April 18 through April 21.

Continue reading…

Cybercriminals are after your HIPAA data

Almost 30% of health care data breaches in July attributed to cybercriminals, according to Health IT Smart Brief.  Many of these records were posted on the dark net for sale by The Dark Overlord.

Continue reading…

Older Posts